Expert analysis from Ricnology
IBM API Connect suffers from critical CVE-2024-47106 vulnerability with CVSS 9.8 severity rating, enabling remote attackers to execute arbitrary code through authentication bypass, affecting API management systems and requiring immediate patching
DarkSpectre browser extension malware campaign leverages Chrome, Edge, and Firefox extensions to distribute credential-stealing malware, compromising 8.8 million users globally through fake productivity and security tools
Trust Wallet Chrome extension compromised after attackers exploited exposed GitHub developer credentials in Shai-Hulud supply chain attack, injecting malicious code that drained $8.5 million in cryptocurrency from user wallets
IBM API Connect CVE-2025-13915 authentication bypass vulnerability rated CVSS 9.8 enables remote attackers to gain unauthorized system access through authentication mechanism exploitation, affecting enterprise API management platforms and requiring immediate patching
DarkSpectre malware campaign compromises millions of users through malicious browser extensions distributed across Chrome and Edge, stealing credentials and cryptocurrency wallet data from infected systems through silent background operations
Trust Wallet Chrome extension targeted in Shai-Hulud supply chain attack after exposed GitHub developer credentials allowed attackers to inject malicious code, resulting in $8.5 million cryptocurrency theft from user wallets
MacSync information stealer bypasses macOS Gatekeeper protections through digitally signed and notarized applications, masquerading as legitimate messaging software while exfiltrating credentials and cryptocurrency wallets from infected systems
Security researchers expose Rey's leadership role coordinating Scattered LAPSUS$ Hunters cybercrime operations, revealing infrastructure management, attack planning, and social engineering tactics across multi-million dollar breaches
U.S. Treasury removes sanctions from five individuals linked to Intellexa commercial spyware operations, reversing previous penalties imposed for mercenary surveillance software development and deployment against journalists and government officials
Nomani investment fraud expands 62% leveraging AI-generated celebrity deepfakes across Facebook and YouTube, with ESET blocking 64,000 malicious URLs distributing cryptocurrency scams through fake endorsements on social media
MacSync information stealer variant exploits Apple's notarization framework, distributing through digitally signed Swift applications disguised as messaging tools to bypass Gatekeeper and exfiltrate credentials and crypto wallets
Digital investigation identifies Rey as central operator managing Scattered LAPSUS$ Hunters cybercrime infrastructure, coordinating data theft operations and overseeing social engineering attacks against enterprise targets